./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1122673258
<...>
DUID 00:04:f8:32:f0:25:6b:f7:7b:d6:d2:5e:34:7f:1d:07:e3:4e
forked to background, child pid 3185
[ 20.667486][ T3186] 8021q: adding VLAN 0 to HW filter on device bond0
[ 20.682739][ T3186] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.1.83' (ECDSA) to the list of known hosts.
execve("./syz-executor1122673258", ["./syz-executor1122673258"], 0x7ffcc65eaa90 /* 10 vars */) = 0
brk(NULL) = 0x555556757000
brk(0x555556757c40) = 0x555556757c40
arch_prctl(ARCH_SET_FS, 0x555556757300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1122673258", 4096) = 28
brk(0x555556778c40) = 0x555556778c40
brk(0x555556779000) = 0x555556779000
mprotect(0x7f33c3a05000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
ftruncate(3, 135266304) = 0
pwrite64(3, "\x01\x16\x19\x70\x00\x00\x00\x01\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x07\x09\x00\x00\x07\x6c\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x08\x19\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x09\x25\x6c\x6f\x63\x6b"..., 101, 65536) = 101
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
mkdir("./file0", 0777) = 0
syzkaller login: [ 38.734909][ T3606] loop0: detected capacity change from 0 to 264192
[ 38.746683][ T3606] gfs2: fsid=loop0: Trying to join cluster "lock_nolock", "loop0"
[ 38.754583][ T3606] gfs2: fsid=loop0: Now mounting FS (format 1801)...
[ 38.761817][ T3606] ================================================================================
[ 38.771173][ T3606] UBSAN: shift-out-of-bounds in fs/gfs2/meta_io.c:128:16
[ 38.778200][ T3606] shift exponent 4294967293 is too large for 64-bit type 'u64' (aka 'unsigned long long')
[ 38.788464][ T3606] CPU: 1 PID: 3606 Comm: syz-executor112 Not tainted 6.0.0-syzkaller-09423-g493ffd6605b2 #0
[ 38.798534][ T3606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 38.808577][ T3606] Call Trace:
[ 38.811861][ T3606]
[ 38.814815][ T3606] dump_stack_lvl+0x1b1/0x28e
[ 38.819479][ T3606] ? fortify_panic+0x13/0x13
[ 38.824062][ T3606] ? vsnprintf+0x1af/0x1ce0
[ 38.828559][ T3606] ? panic+0x710/0x710
[ 38.832621][ T3606] ? sched_clock_cpu+0x71/0x2b0
[ 38.837467][ T3606] ? print_irqtrace_events+0x220/0x220
[ 38.843018][ T3606] ? do_raw_spin_unlock+0x134/0x8a0
[ 38.848220][ T3606] __ubsan_handle_shift_out_of_bounds+0x33d/0x3b0
[ 38.854638][ T3606] ? name_to_dev_t+0x999/0xc30
[ 38.859460][ T3606] gfs2_getbuf+0x759/0x7d0
[ 38.863883][ T3606] gfs2_meta_read+0x153/0x910
[ 38.868617][ T3606] ? release_firmware_map_entry+0x187/0x187
[ 38.874523][ T3606] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 38.880518][ T3606] ? trace_lock_release+0x7b/0x1a0
[ 38.885631][ T3606] ? gfs2_meta_new+0x150/0x150
[ 38.890560][ T3606] ? lock_release+0x81/0x820
[ 38.895143][ T3606] gfs2_meta_buffer+0x153/0x3a0
[ 38.899986][ T3606] ? gfs2_glock_nq+0xd7b/0x1640
[ 38.904828][ T3606] ? gfs2_journal_wipe+0x9a0/0x9a0
[ 38.909929][ T3606] ? do_raw_spin_lock+0x148/0x360
[ 38.914947][ T3606] ? __lock_acquire+0x1f60/0x1f60
[ 38.920026][ T3606] gfs2_inode_refresh+0xab/0xe90
[ 38.925021][ T3606] ? gfs2_inode_metasync+0xf0/0xf0
[ 38.930309][ T3606] ? _raw_spin_unlock+0x24/0x40
[ 38.935192][ T3606] gfs2_instantiate+0x15e/0x220
[ 38.940395][ T3606] gfs2_glock_wait+0x1d9/0x2a0
[ 38.945272][ T3606] gfs2_lookupi+0x40c/0x650
[ 38.949790][ T3606] ? gfs2_lookup_simple+0x170/0x170
[ 38.954998][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 38.960630][ T3606] ? gfs2_lookup_simple+0xec/0x170
[ 38.965753][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 38.971377][ T3606] ? crc32_le_base+0x7a0/0xd00
[ 38.976149][ T3606] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 38.982180][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 38.987874][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 38.993495][ T3606] gfs2_lookup_simple+0xec/0x170
[ 38.998613][ T3606] ? lockref_put_or_lock+0x6f/0xb0
[ 39.003798][ T3606] ? trace_lock_release+0x7b/0x1a0
[ 39.008900][ T3606] ? gfs2_lookup_by_inum+0xe0/0xe0
[ 39.014000][ T3606] ? format_decode+0x43e/0x1a50
[ 39.018904][ T3606] init_journal+0x19b/0x22c0
[ 39.023488][ T3606] ? string+0x289/0x2d0
[ 39.027647][ T3606] ? vsnprintf+0x1fa/0x1ce0
[ 39.032144][ T3606] ? memcpy+0x3c/0x60
[ 39.036116][ T3606] ? vsnprintf+0x1c02/0x1ce0
[ 39.040695][ T3606] ? _compound_head+0x130/0x130
[ 39.045551][ T3606] ? __ptr_to_hashval+0x2f0/0x2f0
[ 39.050587][ T3606] ? init_sb+0xb7b/0x12b0
[ 39.054921][ T3606] ? snprintf+0xc0/0x110
[ 39.059152][ T3606] ? gfs2_fill_super+0x1a58/0x2610
[ 39.064251][ T3606] ? vscnprintf+0x80/0x80
[ 39.068622][ T3606] init_inodes+0xdc/0x340
[ 39.072945][ T3606] gfs2_fill_super+0x1ad8/0x2610
[ 39.077892][ T3606] ? gfs2_reconfigure+0xce0/0xce0
[ 39.082920][ T3606] ? __ptr_to_hashval+0x2f0/0x2f0
[ 39.087945][ T3606] ? up_write+0x131/0x4d0
[ 39.092281][ T3606] ? init_locking+0xbd/0x220
[ 39.096952][ T3606] ? vscnprintf+0x80/0x80
[ 39.101271][ T3606] ? set_blocksize+0x1d5/0x360
[ 39.106018][ T3606] get_tree_bdev+0x400/0x620
[ 39.110596][ T3606] ? gfs2_reconfigure+0xce0/0xce0
[ 39.115784][ T3606] gfs2_get_tree+0x50/0x210
[ 39.120279][ T3606] ? bpf_lsm_capable+0x5/0x10
[ 39.124944][ T3606] vfs_get_tree+0x88/0x270
[ 39.129367][ T3606] do_new_mount+0x289/0xad0
[ 39.133869][ T3606] ? do_move_mount_old+0x150/0x150
[ 39.138973][ T3606] ? user_path_at_empty+0x149/0x1a0
[ 39.144155][ T3606] __se_sys_mount+0x2d3/0x3c0
[ 39.148838][ T3606] ? __x64_sys_mount+0xc0/0xc0
[ 39.153606][ T3606] ? __x64_sys_mount+0x1c/0xc0
[ 39.158360][ T3606] do_syscall_64+0x3d/0xb0
[ 39.162763][ T3606] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 39.168643][ T3606] RIP: 0033:0x7f33c399a42a
[ 39.173050][ T3606] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 39.192663][ T3606] RSP: 002b:00007ffff5d660a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 39.201060][ T3606] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f33c399a42a
[ 39.209016][ T3606] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffff5d660c0
[ 39.217005][ T3606] RBP: 00007ffff5d660c0 R08: 00007ffff5d66100 R09: 00005555567572c0
[ 39.224981][ T3606] R10: 0000000000000008 R11: 0000000000000282 R12: 0000000000000004
[ 39.233028][ T3606] R13: 00007ffff5d66100 R14: 0000000000000001 R15: 0000000020000218
[ 39.240991][ T3606]
[ 39.244667][ T3606] ================================================================================
[ 39.254206][ T3606] Kernel panic - not syncing: panic_on_warn set ...
[ 39.260811][ T3606] CPU: 1 PID: 3606 Comm: syz-executor112 Not tainted 6.0.0-syzkaller-09423-g493ffd6605b2 #0
[ 39.270889][ T3606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 39.280931][ T3606] Call Trace:
[ 39.284191][ T3606]
[ 39.287107][ T3606] dump_stack_lvl+0x1b1/0x28e
[ 39.291775][ T3606] ? fortify_panic+0x13/0x13
[ 39.296346][ T3606] ? panic+0x710/0x710
[ 39.300399][ T3606] ? vscnprintf+0x59/0x80
[ 39.304724][ T3606] panic+0x2d6/0x710
[ 39.308606][ T3606] ? __ubsan_handle_shift_out_of_bounds+0x360/0x3b0
[ 39.315185][ T3606] ? fb_is_primary_device+0xcc/0xcc
[ 39.320373][ T3606] ? panic+0x710/0x710
[ 39.324426][ T3606] ? sched_clock_cpu+0x71/0x2b0
[ 39.329261][ T3606] ? print_irqtrace_events+0x220/0x220
[ 39.334761][ T3606] ? do_raw_spin_unlock+0x134/0x8a0
[ 39.339950][ T3606] __ubsan_handle_shift_out_of_bounds+0x3af/0x3b0
[ 39.346354][ T3606] ? name_to_dev_t+0x999/0xc30
[ 39.351119][ T3606] gfs2_getbuf+0x759/0x7d0
[ 39.355525][ T3606] gfs2_meta_read+0x153/0x910
[ 39.360184][ T3606] ? release_firmware_map_entry+0x187/0x187
[ 39.366766][ T3606] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 39.373091][ T3606] ? trace_lock_release+0x7b/0x1a0
[ 39.378199][ T3606] ? gfs2_meta_new+0x150/0x150
[ 39.382955][ T3606] ? lock_release+0x81/0x820
[ 39.387541][ T3606] gfs2_meta_buffer+0x153/0x3a0
[ 39.392386][ T3606] ? gfs2_glock_nq+0xd7b/0x1640
[ 39.397235][ T3606] ? gfs2_journal_wipe+0x9a0/0x9a0
[ 39.402546][ T3606] ? do_raw_spin_lock+0x148/0x360
[ 39.407603][ T3606] ? __lock_acquire+0x1f60/0x1f60
[ 39.412653][ T3606] gfs2_inode_refresh+0xab/0xe90
[ 39.417664][ T3606] ? gfs2_inode_metasync+0xf0/0xf0
[ 39.422792][ T3606] ? _raw_spin_unlock+0x24/0x40
[ 39.427640][ T3606] gfs2_instantiate+0x15e/0x220
[ 39.432504][ T3606] gfs2_glock_wait+0x1d9/0x2a0
[ 39.437292][ T3606] gfs2_lookupi+0x40c/0x650
[ 39.441804][ T3606] ? gfs2_lookup_simple+0x170/0x170
[ 39.446997][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 39.452628][ T3606] ? gfs2_lookup_simple+0xec/0x170
[ 39.457751][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 39.463375][ T3606] ? crc32_le_base+0x7a0/0xd00
[ 39.468131][ T3606] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 39.474108][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 39.479738][ T3606] ? rcu_read_lock_sched_held+0x5d/0x110
[ 39.485369][ T3606] gfs2_lookup_simple+0xec/0x170
[ 39.490314][ T3606] ? lockref_put_or_lock+0x6f/0xb0
[ 39.495420][ T3606] ? trace_lock_release+0x7b/0x1a0
[ 39.500527][ T3606] ? gfs2_lookup_by_inum+0xe0/0xe0
[ 39.505630][ T3606] ? format_decode+0x43e/0x1a50
[ 39.510490][ T3606] init_journal+0x19b/0x22c0
[ 39.515077][ T3606] ? string+0x289/0x2d0
[ 39.519233][ T3606] ? vsnprintf+0x1fa/0x1ce0
[ 39.523760][ T3606] ? memcpy+0x3c/0x60
[ 39.527738][ T3606] ? vsnprintf+0x1c02/0x1ce0
[ 39.532355][ T3606] ? _compound_head+0x130/0x130
[ 39.537243][ T3606] ? __ptr_to_hashval+0x2f0/0x2f0
[ 39.542282][ T3606] ? init_sb+0xb7b/0x12b0
[ 39.546610][ T3606] ? snprintf+0xc0/0x110
[ 39.550874][ T3606] ? gfs2_fill_super+0x1a58/0x2610
[ 39.555983][ T3606] ? vscnprintf+0x80/0x80
[ 39.560330][ T3606] init_inodes+0xdc/0x340
[ 39.564659][ T3606] gfs2_fill_super+0x1ad8/0x2610
[ 39.569602][ T3606] ? gfs2_reconfigure+0xce0/0xce0
[ 39.574627][ T3606] ? __ptr_to_hashval+0x2f0/0x2f0
[ 39.579661][ T3606] ? up_write+0x131/0x4d0
[ 39.584005][ T3606] ? init_locking+0xbd/0x220
[ 39.588594][ T3606] ? vscnprintf+0x80/0x80
[ 39.593292][ T3606] ? set_blocksize+0x1d5/0x360
[ 39.598051][ T3606] get_tree_bdev+0x400/0x620
[ 39.602669][ T3606] ? gfs2_reconfigure+0xce0/0xce0
[ 39.607735][ T3606] gfs2_get_tree+0x50/0x210
[ 39.612238][ T3606] ? bpf_lsm_capable+0x5/0x10
[ 39.616913][ T3606] vfs_get_tree+0x88/0x270
[ 39.621412][ T3606] do_new_mount+0x289/0xad0
[ 39.625914][ T3606] ? do_move_mount_old+0x150/0x150
[ 39.631028][ T3606] ? user_path_at_empty+0x149/0x1a0
[ 39.636251][ T3606] __se_sys_mount+0x2d3/0x3c0
[ 39.641019][ T3606] ? __x64_sys_mount+0xc0/0xc0
[ 39.645779][ T3606] ? __x64_sys_mount+0x1c/0xc0
[ 39.650536][ T3606] do_syscall_64+0x3d/0xb0
[ 39.654952][ T3606] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 39.660845][ T3606] RIP: 0033:0x7f33c399a42a
[ 39.665272][ T3606] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 39.684878][ T3606] RSP: 002b:00007ffff5d660a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 39.693289][ T3606] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f33c399a42a
[ 39.701253][ T3606] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffff5d660c0
[ 39.709220][ T3606] RBP: 00007ffff5d660c0 R08: 00007ffff5d66100 R09: 00005555567572c0
[ 39.717191][ T3606] R10: 0000000000000008 R11: 0000000000000282 R12: 0000000000000004
[ 39.725178][ T3606] R13: 00007ffff5d66100 R14: 0000000000000001 R15: 0000000020000218
[ 39.733162][ T3606]
[ 39.736378][ T3606] Kernel Offset: disabled
[ 39.740702][ T3606] Rebooting in 86400 seconds..